| Topic | Details |
| Topic 1 | - Cybersecurity roles and responsibilities and risk management: This section measures the expertise of Security Leaders and Risk Managers in defining and managing cybersecurity roles and responsibilities. It also covers comprehensive risk management processes, including identifying, assessing, and mitigating cybersecurity risks in line with NIS 2 requirements.
|
| Topic 2 | - Communication and awareness: This section covers skills of Communication Officers and Training Managers in developing and executing communication strategies and awareness programs. It emphasizes fostering cybersecurity awareness across the organization and effective internal and external communication during cybersecurity events or compliance activities.
|
| Topic 3 | - Fundamental concepts and definitions of NIS 2 Directive: This section of the exam measures the skills of Cybersecurity Professionals and IT Managers and covers the basic concepts and definitions related to the NIS 2 Directive. Candidates gain understanding of the directive¡¯s scope, objectives, key terms, and foundational requirements essential to lead implementation efforts effectively within organizations.
|
| Topic 4 | - Cybersecurity controls, incident management, and crisis management: This domain focuses on Security Operations Managers and Incident Response Coordinators and involves implementing cybersecurity controls, managing incident response activities, and handling crisis situations. It ensures organizations are prepared to prevent, detect, respond to, and recover from cybersecurity incidents effectively.
|
| Topic 5 | - Planning of NIS 2 Directive requirements implementation: This domain targets Project Managers and Implementation Specialists focusing on how to initiate and plan the rollout of NIS 2 Directive requirements. It includes using best practices and methodologies to align organizational processes and cybersecurity programs with the directive¡¯s mandates.
|